Merge pull request #7740 from erik-krogh/CWE-347

JS: promote the js/jwt-missing-verification query out of experimental

javascript/ql/test/query-tests/Security/CWE-347/MissingJWTKeyVerification.expected

@@ -0,0 +1,3 @@
+| bad-jwt.js:10:19:10:20 | "" | This argument disables the integrity enforcement of the token verification. |
+| bad-jwt.js:11:19:11:27 | undefined | This argument disables the integrity enforcement of the token verification. |
+| bad-jwt.js:12:19:12:23 | false | This argument disables the integrity enforcement of the token verification. |

javascript/ql/test/query-tests/Security/CWE-347/MissingJWTKeyVerification.qlref

@@ -0,0 +1 @@
+Security/CWE-347/MissingJWTKeyVerification.ql

javascript/ql/test/query-tests/Security/CWE-347/bad-jwt.js

@@ -0,0 +1,12 @@
+const jwt = require("jsonwebtoken");
+
+const secret = "my-secret-key";
+
+var token = jwt.sign({ foo: 'bar' }, secret, { algorithm: "HS256" }) 
+jwt.verify(token, secret, { algorithms: ["HS256", "none"] }) // OK
+
+
+var token = jwt.sign({ foo: 'bar' }, secret, { algorithm: "none" })
+jwt.verify(token, "", { algorithms: ["HS256", "none"] }) // NOT OK
+jwt.verify(token, undefined, { algorithms: ["HS256", "none"] }) // NOT OK
+jwt.verify(token, false, { algorithms: ["HS256", "none"] }) // NOT OK